I use tailscale serve to access my TrueNAS services and apps securely with certificates and I works good for immich etc.
However when I run tailscale serve --bg --https=443 443 for the main WebUI I get the following error:
“400 Bad Request, The plain HTTP request was sent to HTTPS port”
Any ideas?
It’s not best practice to reverse proxy TN web UI.
I think the issue is that the TrueNAS web ui runs HTTPS locally (with a self-signed cert), but Tailscale Serve defaults to forwarding as plain HTTP.
Try specifying the backend protocol: tailscale serve --bg --https=443 https+insecure://localhost:443